Merge pull request DefectDojo#14063 from manuel-sommer/google_artifactory_vulnid

rossops · web-flow · commit 7d2f578049a8 · 2026-01-12T08:49:50.000-06:00
🎉 Advance Google Cloud Artifact Scan to parse vulnid
diff --git a/dojo/tools/gcloud_artifact_scan/parser.py b/dojo/tools/gcloud_artifact_scan/parser.py
@@ -55,6 +55,8 @@ def get_findings(self, json_output, test):
                         finding.fix_available = vuln["vulnerability"].get("fixAvailable")
                     if vuln["vulnerability"].get("cvssScore"):
                         finding.cvssv3_score = vuln["vulnerability"].get("cvssScore")
+                    if vuln["vulnerability"]["shortDescription"]:
+                        finding.unsaved_vulnerability_ids = [vuln["vulnerability"]["shortDescription"]]
                     findings.append(finding)
         return findings
 
diff --git a/unittests/tools/test_gcloud_artifact_scan_parser.py b/unittests/tools/test_gcloud_artifact_scan_parser.py
@@ -17,6 +17,7 @@ def test_parse_file_with_multiple_vuln_has_multiple_findings(self):
         self.assertEqual("Critical", finding.severity)
         finding = findings[2]
         self.assertEqual("projects/goog-vulnz/notes/CVE-2023-29404", finding.title)
+        self.assertEqual("CVE-2023-29404", finding.unsaved_vulnerability_ids[0])
         self.assertEqual("Critical", finding.severity)
 
     def test_parse_file_artifact_analysis_occurrences_sample(self):
@@ -33,3 +34,4 @@ def test_parse_file_artifact_analysis_occurrences_sample(self):
         finding = findings[2]
         self.assertEqual("projects/goog-vulnz/notes/CVE-2022-37620", finding.title)
         self.assertEqual("High", finding.severity)
+        self.assertEqual("CVE-2022-37620", finding.unsaved_vulnerability_ids[0])
